I am trying to net-to-roadwarrior IPSEC connection beween debian gateway and a Windows XP machine using lsipsectool (http://sourceforge.net/projects/lsipsectool/). I was able to establish the connection but could not get desired pings.<br><br>However after adding one routing table entry in Windows XP machine I could get the desired results (Details mentioned below). <br><br>ipsec.conf on debian gateway<br>=========================<br>version 2.0<br><br>config setup<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; interfaces=%defaultroute<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; nat_traversal=yes<br><br>conn %default<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; keyingtries=1<br><br>conn nettwo<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; left=10.10.136.90<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; leftsubnet=192.168.1.0/24<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; right=10.10.136.10<br>&nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp; 
 rightsubnet=192.168.1.0/24<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; authby=secret<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; esp=3des-md5<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; pfs=yes<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; auto=start<br><img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-1.jpg" alt=""><img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-2.jpg" alt=""><img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-5.jpg" alt="">&nbsp;&nbsp;&nbsp; <img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-6.jpg" alt=""><br>LsipsecTool Settings<br>===================<br><br>Local Side of the tunnel:<br>&nbsp;&nbsp;&nbsp; IPAddress: 10.10.136.44<br>&nbsp;&nbsp;&nbsp; Local Address/Network Mask : 10.10.136.44 / 255.255.255.255<br><br>Remote Side of the tunnel<br>---------------------------------------<br>&nbsp;&nbsp;&nbsp; VPN Gateway: 10.10.136.90<br>&nbsp;&nbsp;&nbsp; Remote
 Internal IP: 10.10.136.90<br>&nbsp;&nbsp;&nbsp; Private Address/Network Mask: 192.168.1.0 / 255.255.255.0<br><br>IPSec Options<br>---------------------<br><br>&nbsp;&nbsp;&nbsp; Authentication method : Pre-shared key (yogesh)<br>&nbsp;&nbsp;&nbsp; Proto/Encryption/Registry:&nbsp; ESP&nbsp;&nbsp; 3DES&nbsp; MD5<br>&nbsp;&nbsp;&nbsp; IKE Duration 3500 Secs. 50000 KBytes<br><br><br><img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot.jpg" alt=""><img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-3.jpg" alt=""><img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-4.jpg" alt=""><br>These configurations established the connection but I could get desired pings only after adding routing table entry in Windows XP side with the command<br><br>ROUTE&nbsp;&nbsp; ADD&nbsp;&nbsp; 192.168.1.0&nbsp;&nbsp; MASK 255.255.255.0&nbsp;&nbsp;&nbsp; 10.10.136.90<br><br><br>However When I tried to establish Net-to-Net&nbsp; Connection&nbsp;
 with&nbsp; these changes<br><br>psec.conf on debian gateway<br>=========================<br>version 2.0<br><br>config setup<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; interfaces=%defaultroute<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; nat_traversal=yes<br><br>conn %default<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; keyingtries=1<br><br>conn nettwo<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; left=10.10.136.90<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; leftsubnet=192.168.1.0/24<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; right=10.10.136.10<br>&nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp;  rightsubnet=192.168.0.0/24<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; authby=secret<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; esp=3des-md5<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; pfs=yes<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; auto=start<br><img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-1.jpg" alt=""><img
 src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-2.jpg" alt=""><img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-5.jpg" alt="">&nbsp;&nbsp;&nbsp; <img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-6.jpg" alt=""><br> LsipsecTool Settings<br> ===================<br> <br> Local Side of the tunnel:<br> &nbsp;&nbsp;&nbsp; IPAddress: 10.10.136.44<br> &nbsp;&nbsp;&nbsp; Local Address/Network Mask : 192.168.0.0 / 255.255.255.0<br> <br> Remote Side of the tunnel<br> ---------------------------------------<br> &nbsp;&nbsp;&nbsp; VPN Gateway: 10.10.136.90<br> &nbsp;&nbsp;&nbsp; Remote Internal IP: 10.10.136.90<br> &nbsp;&nbsp;&nbsp; Private Address/Network Mask: 192.168.1.0 / 255.255.255.0<br> <br> IPSec Options<br> ---------------------<br> <br> &nbsp;&nbsp;&nbsp; Authentication method : Pre-shared key (yogesh)<br> &nbsp;&nbsp;&nbsp; Proto/Encryption/Registry:&nbsp; ESP&nbsp;&nbsp; 3DES&nbsp; MD5<br> &nbsp;&nbsp;&nbsp; IKE
 Duration 3500 Secs. 50000 KBytes<br> <br> <br><img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot.jpg" alt="">Here also connection got established but desired pings are not obtained even after adding routing table entry using<br>ROUTE&nbsp;&nbsp; ADD&nbsp;&nbsp; 192.168.1.0&nbsp;&nbsp; MASK 255.255.255.0&nbsp;&nbsp;&nbsp; 10.10.136.90<br><br>I also tried setting up Windows XP machine as router (http://www.haxial.com/faq/routerconfig/winxp/) but then also I couldn't get desired pings.<br><br>Can anybody help me for these queries<br><ul><li>&nbsp;&nbsp;&nbsp; Net-to-net vpn connection between Windows XP and Linux Openswan.</li><li>&nbsp;&nbsp;&nbsp; Why it required to add routing table entry for Net-to-roadwarror connection.</li><li>&nbsp;&nbsp;&nbsp; Why Windows XP does not add any virtual connection for IPSEC (like ipsec0 in linux) and relevent routing table entries.</li></ul><br><p>&#32;


      <!--4--><hr size=1></hr> 5, 50, 500, 5000. Store N number of mails in your inbox. <a href="http://in.rd.yahoo.com/tagline_mail_4/*http://help.yahoo.com/l/in/yahoo/mail/yahoomail/tools/tools-08.html/">Click here.</a>